Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/0BuKRCDHaLAaAdtOKuFOjLHswoY.roa
File: 0BuKRCDHaLAaAdtOKuFOjLHswoY.roa (raw, json)
Hash identifier: KPfbChjy/LxspVOiIhn4WkZzcSJHr8zqn31kExJmIeE=
Subject key identifier: D0:1B:8A:44:20:C7:68:B0:1A:01:DB:4E:2A:E1:4E:8C:B1:EC:C2:86
Certificate issuer: /CN=40b132c17e598f11b6a10f42ef3bce961e18e8ef
Certificate serial: 018EEFD3E83293EEE9389865C97012FD2833
Authority key identifier: 40:B1:32:C1:7E:59:8F:11:B6:A1:0F:42:EF:3B:CE:96:1E:18:E8:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/0BuKRCDHaLAaAdtOKuFOjLHswoY.roa
Signing time: Thu 18 Apr 2024 06:10:25 +0000
ROA not before: Thu 18 Apr 2024 06:10:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ef:d3:e8:32:93:ee:e9:38:98:65:c9:70:12:fd:28:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b132c17e598f11b6a10f42ef3bce961e18e8ef
Validity
Not Before: Apr 18 06:10:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d01b8a4420c768b01a01db4e2ae14e8cb1ecc286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a9:d3:31:d9:ec:d9:4e:6d:aa:8b:86:aa:ef:
af:88:84:04:91:20:50:9f:c4:44:39:f9:5d:b1:b5:
7f:1e:d5:74:64:32:a8:1c:a5:28:b1:16:c7:80:cf:
08:9c:7e:02:35:b1:62:a4:bf:ac:8b:66:22:a1:9e:
bf:4c:c5:a7:55:ea:ce:aa:6d:68:9b:7f:39:e9:35:
e6:07:a8:33:d8:fc:f1:21:d3:6a:36:19:ee:58:8b:
7d:3b:20:8d:3c:0e:ea:b1:e1:2d:82:35:1c:46:57:
4d:c8:f2:26:43:7c:b8:6a:28:b5:51:b0:a6:a0:5c:
8a:dd:45:75:08:45:1e:7c:6c:c5:60:d9:40:93:2e:
14:50:8b:f5:53:ba:9c:d0:57:43:72:a0:0b:b9:7e:
be:6e:8f:a1:d9:bc:cf:b8:c6:00:66:a4:83:72:10:
b9:fe:da:c3:bd:22:5a:6a:8c:3f:9a:5c:ad:0c:31:
dc:43:92:19:0b:19:25:f7:d1:d2:f0:25:7a:d4:49:
f0:bd:2a:60:00:7b:9a:4c:6e:57:ef:14:ae:0e:fc:
5e:02:95:c3:ff:04:79:79:68:e8:e6:35:5d:7b:c9:
5b:5e:ba:ff:5b:5c:94:6c:e3:00:ab:dc:26:39:17:
6b:6c:b2:eb:09:c2:cb:63:6c:88:43:5f:ad:fe:06:
08:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:1B:8A:44:20:C7:68:B0:1A:01:DB:4E:2A:E1:4E:8C:B1:EC:C2:86
X509v3 Authority Key Identifier:
keyid:40:B1:32:C1:7E:59:8F:11:B6:A1:0F:42:EF:3B:CE:96:1E:18:E8:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/0BuKRCDHaLAaAdtOKuFOjLHswoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
3f:03:aa:dd:58:0c:59:20:e4:37:30:5c:7e:04:11:14:64:e1:
04:35:29:48:f2:36:be:e6:6c:21:f8:2b:77:79:46:7e:5c:66:
ac:1f:81:86:88:46:77:f9:d4:c4:fe:d4:32:42:b0:69:c5:e5:
11:ad:f9:2d:30:12:e3:a8:78:5a:31:a0:8d:10:eb:01:b7:6f:
ef:a0:ff:1e:aa:89:24:46:cf:4e:3c:05:aa:4c:f9:ac:f4:aa:
59:72:2d:a5:8c:03:24:39:21:c2:2d:b3:98:60:a5:29:fe:71:
a9:bc:91:97:4d:09:fb:cb:71:76:50:ee:8b:6d:8b:65:c8:5e:
61:ee:36:48:53:29:bc:bd:66:da:81:ed:40:b3:ad:5e:da:51:
32:2a:4d:55:39:6e:86:7f:14:af:45:e7:ff:8f:dd:ac:db:01:
7c:0d:75:8b:49:01:09:e2:e4:a1:49:a5:4b:eb:c6:10:47:0c:
c8:18:be:2d:58:08:ce:e4:7a:ee:9c:02:e1:8b:29:5a:71:ba:
44:77:95:34:02:93:cb:fe:38:e3:9d:df:3b:8a:67:4c:de:3e:
35:b4:b9:bb:81:af:ef:05:a2:24:2a:74:90:83:39:56:dd:1a:
59:25:b4:ca:89:80:0e:20:43:b0:7d:d8:4d:59:28:c9:2c:15:
7e:c9:0b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:25:32 2025 by rpki-client